How do I get started with SSO?
IBM Blueworks Live implements single-sign on (SSO) using Security Assertion Markup Language (SAML) 2.0 integration with your company's authentication provider. Blueworks Live SSO integration allows users to log in to Blueworks Live with their corporate credentials. Instead of using their email address and Blueworks Live password, users from your company use their corporate user ID and password to log in to Blueworks Live.
If you are an admin who wants to qualify your account for SSO, you must meet the following prerequisites:
- An authentication provider that supports SAML 2.0.
- An IT contact in your organization who can configure your corporate identity provider software to allow Blueworks Live to participate as a relying party. If there are problems with the SSO configuration, the Blueworks Live support team might need to engage with this individual to troubleshoot the configuration.
Restrictions: Blueworks Live SSO has the following restrictions:
Configuring Blueworks Live SSO is a
two part process. - If you plan to use unsolicited assertions for login, configuration of your account for SSO might need to be done by Blueworks Live support.
- The Blueworks Live APIs do not support authentication using an SSO-enabled user.
- Subscribing to Blueworks Live processes from IBM Business Process Manager (BPM) does not support SSO-enabled users.
- Your corporate authentication provider must be configured to allow communication with Blueworks Live as a relying party. The configuration must be done by someone with administrative access to your authentication provider.
- An administrator for your account must configure Blueworks Live to communicate with your corporate identity provider.